Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/evq79f_HtvusjTvggkxN6aLSVsw.roa
File: evq79f_HtvusjTvggkxN6aLSVsw.roa (raw, json)
Hash identifier: 6i/fjwQN6AxZKrrQmhQnDv4i0RRcNpbDNf53eIXt1QM=
Subject key identifier: 7A:FA:BB:F5:FF:C7:B6:FB:AC:8D:3B:E0:82:4C:4D:E9:A2:D2:56:CC
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 0238F456
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/evq79f_HtvusjTvggkxN6aLSVsw.roa
Signing time: Sat 01 Jan 2022 11:59:49 +0000
ROA not before: Sat 01 Jan 2022 11:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199496
IP address blocks: 185.37.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37286998 (0x238f456)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Jan 1 11:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7afabbf5ffc7b6fbac8d3be0824c4de9a2d256cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7c:b1:66:01:59:95:02:23:2c:eb:95:2b:52:
82:1a:40:bb:d3:3a:c5:1d:c2:68:cc:f6:cd:86:15:
6f:6c:c8:6b:31:dc:b6:54:b2:65:2e:8d:52:8e:f3:
03:8b:19:b9:7b:39:e1:c0:a9:04:d4:d3:c2:62:56:
82:6f:48:66:44:43:66:e4:ea:8f:ad:4b:e8:0b:ca:
b1:84:48:09:e6:2a:6e:c8:ee:55:b9:bf:5c:06:7a:
db:9c:f9:8b:5b:fa:dd:d2:9a:d2:14:ce:a8:54:88:
53:b6:8f:4f:e6:94:05:08:67:25:a5:ab:0e:69:e7:
5d:d5:ed:0c:ae:76:b9:46:a0:59:6a:91:99:7a:60:
9f:7d:4e:c9:59:f7:26:2b:dc:70:cf:34:0c:2f:f1:
f9:47:67:44:67:0d:bf:a9:f6:7d:52:96:77:dc:63:
59:e9:cc:be:1f:71:56:59:ce:5a:e4:35:1d:95:4e:
02:71:63:11:7c:52:47:78:2f:eb:c2:16:8b:4b:00:
f4:12:75:1d:6f:4c:36:d4:60:e9:00:27:44:37:6a:
10:f2:ee:dc:7a:02:c6:0a:ea:2e:79:2c:3d:2b:b3:
8b:2b:ae:dc:05:9c:3a:ba:30:b3:89:ff:6e:d0:0b:
e6:12:86:7d:40:ad:dd:77:08:e1:d7:5b:07:d1:6f:
9a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FA:BB:F5:FF:C7:B6:FB:AC:8D:3B:E0:82:4C:4D:E9:A2:D2:56:CC
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/evq79f_HtvusjTvggkxN6aLSVsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.214.0/24
Signature Algorithm: sha256WithRSAEncryption
72:6b:9b:81:eb:5c:ee:52:db:cb:81:ad:6f:4c:e3:b5:c3:83:
b5:4b:be:5e:91:e6:04:27:c2:0e:52:c7:da:25:b5:69:ff:ec:
7c:0b:91:45:0f:bc:ef:a9:06:97:1e:68:d7:01:c5:e6:b2:10:
2b:c1:f4:b4:45:da:7f:d4:09:ee:a2:d1:66:45:a8:9e:1d:cd:
23:b8:7d:ed:dc:85:33:02:79:c8:f1:02:c4:49:ff:c3:02:e9:
fb:62:67:ce:d1:e7:3c:26:99:2f:d4:7c:a6:5b:cd:be:c7:c3:
0d:7a:97:85:68:b1:73:d7:ba:2c:c5:37:35:8d:49:ef:23:f7:
53:06:f0:5a:8d:39:ee:c6:c0:28:d9:72:4c:f0:e8:0a:e3:ba:
f0:b2:22:d4:f1:b2:34:01:7a:e6:48:76:0b:19:2b:31:08:8c:
04:ff:54:da:4c:db:5d:d9:83:b3:66:fc:64:ff:ea:e0:15:42:
0c:b6:e4:eb:cb:84:b4:b0:0c:25:18:28:4b:24:19:5b:c7:62:
d5:26:4e:95:9a:68:d2:92:6c:13:85:7f:05:15:00:47:43:51:
59:1e:26:cd:43:19:92:6b:0d:e2:c8:4a:b7:68:3f:e3:37:db:
09:2f:b7:89:a5:f2:b8:fe:4c:9f:6c:a1:42:4f:ad:7e:4f:c6:
06:06:4d:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAjj0VjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Mzc4NjJiNDYwOGM3OWY0NTAyOTVlYzVjODBjN2M3YWQ2ZGZlMmEyMB4XDTIyMDEw
MTExNTk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2FmYWJiZjVmZmM3
YjZmYmFjOGQzYmUwODI0YzRkZTlhMmQyNTZjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKN8sWYBWZUCIyzrlStSghpAu9M6xR3CaMz2zYYVb2zIazHc
tlSyZS6NUo7zA4sZuXs54cCpBNTTwmJWgm9IZkRDZuTqj61L6AvKsYRICeYqbsju
Vbm/XAZ625z5i1v63dKa0hTOqFSIU7aPT+aUBQhnJaWrDmnnXdXtDK52uUagWWqR
mXpgn31OyVn3JivccM80DC/x+UdnRGcNv6n2fVKWd9xjWenMvh9xVlnOWuQ1HZVO
AnFjEXxSR3gv68IWi0sA9BJ1HW9MNtRg6QAnRDdqEPLu3HoCxgrqLnksPSuziyuu
3AWcOrows4n/btAL5hKGfUCt3XcI4ddbB9Fvmk0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR6+rv1/8e2+6yNO+CCTE3potJWzDAfBgNVHSMEGDAWgBQDeGK0YIx59FAp
XsXIDHx61t/iojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0EzaGl0R0NNZWZSUUtWN0Z5QXg4ZXRiZjRxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvMWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8x
L2V2cTc5Zl9IdHZ1c2pUdmdna3hONmFMU1Zzdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
MWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8xL0EzaGl0R0NNZWZS
UUtWN0Z5QXg4ZXRiZjRxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkl1jANBgkqhkiG9w0BAQsFAAOC
AQEAcmubgetc7lLby4Gtb0zjtcODtUu+XpHmBCfCDlLH2iW1af/sfAuRRQ+876kG
lx5o1wHF5rIQK8H0tEXaf9QJ7qLRZkWonh3NI7h97dyFMwJ5yPECxEn/wwLp+2Jn
ztHnPCaZL9R8plvNvsfDDXqXhWixc9e6LMU3NY1J7yP3UwbwWo057sbAKNlyTPDo
CuO68LIi1PGyNAF65kh2CxkrMQiMBP9U2kzbXdmDs2b8ZP/q4BVCDLbk68uEtLAM
JRgoSyQZW8di1SZOlZpo0pJsE4V/BRUAR0NRWR4mzUMZkmsN4shKt2g/4zfbCS+3
iaXyuP5Mn2yhQk+tfk/GBgZNjA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-ams.rpki-client.org